Decentralized Multi-authority ABE for NC1 from BDH

Pratish Datta*, Ilan Komargodski, Brent Waters

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Scopus citations


Decentralized multi-authority attribute-based encryption (MA-ABE) is a strengthening of standard ciphertext-policy attribute-based encryption so that there is no trusted central authority: Any party can become an authority and there is no requirement for any global coordination other than the creation of an initial set of common reference parameters. Essentially, any party can act as an authority for some attribute by creating a public key of its own and issuing private keys to different users that reflect their attributes. This paper presents the first MA-ABE proven secure under the standard search variant of bilinear Diffie–Hellman (CBDH) and in the random oracle model. Our scheme supports all access policies captured by NC1 circuits. All previous constructions were proven secure in the random oracle model and additionally were based on decision assumptions such as the DLIN assumption, non-standard q-type assumptions, or subspace decision assumptions over composite-order bilinear groups.

Original languageAmerican English
Article number6
Pages (from-to)1-31
Number of pages31
JournalJournal of Cryptology
Issue number2
StatePublished - Apr 2023

Bibliographical note

Publisher Copyright:
© 2023, International Association for Cryptologic Research.


  • attribute-based encryption
  • bilinear Diffie-Hellman
  • bilinear pairings
  • decentralized
  • multi-authority


Dive into the research topics of 'Decentralized Multi-authority ABE for NC1 from BDH'. Together they form a unique fingerprint.

Cite this